mirror of https://github.com/OpenVidu/openvidu.git
openvidu-deployment: single-node - community UX improvements. Create EIP if domain is not defined.
cruizba
parent
cf498ee9d5
commit
8f0db18c4b
|
|
@ -204,6 +204,10 @@ Parameters:
|
||||||
Metadata:
|
Metadata:
|
||||||
'AWS::CloudFormation::Interface':
|
'AWS::CloudFormation::Interface':
|
||||||
ParameterGroups:
|
ParameterGroups:
|
||||||
|
- Label:
|
||||||
|
default: SSH Access configuration
|
||||||
|
Parameters:
|
||||||
|
- KeyName
|
||||||
- Label:
|
- Label:
|
||||||
default: Domain and SSL certificate configuration
|
default: Domain and SSL certificate configuration
|
||||||
Parameters:
|
Parameters:
|
||||||
|
|
@ -216,7 +220,6 @@ Metadata:
|
||||||
default: EC2 Instance configuration
|
default: EC2 Instance configuration
|
||||||
Parameters:
|
Parameters:
|
||||||
- InstanceType
|
- InstanceType
|
||||||
- KeyName
|
|
||||||
- AmiId
|
- AmiId
|
||||||
- Label:
|
- Label:
|
||||||
default: S3 bucket for application data and recordings
|
default: S3 bucket for application data and recordings
|
||||||
|
|
@ -235,6 +238,7 @@ Metadata:
|
||||||
|
|
||||||
Conditions:
|
Conditions:
|
||||||
PublicElasticIPPresent: !Not [ !Equals [!Ref PublicElasticIP, ""] ]
|
PublicElasticIPPresent: !Not [ !Equals [!Ref PublicElasticIP, ""] ]
|
||||||
|
PublicElasticIPAbsent: !Equals [!Ref PublicElasticIP, ""]
|
||||||
CreateRecordingsBucket: !Equals [!Ref S3AppDataBucketName, ""]
|
CreateRecordingsBucket: !Equals [!Ref S3AppDataBucketName, ""]
|
||||||
|
|
||||||
Resources:
|
Resources:
|
||||||
|
|
@ -248,26 +252,28 @@ Resources:
|
||||||
Description: Secret for OpenVidu to store deployment info and seed secrets
|
Description: Secret for OpenVidu to store deployment info and seed secrets
|
||||||
SecretString: |
|
SecretString: |
|
||||||
{
|
{
|
||||||
|
"OPENVIDU_URL": "none",
|
||||||
|
"MEET_INITIAL_ADMIN_USER": "none",
|
||||||
|
"MEET_INITIAL_ADMIN_PASSWORD": "none",
|
||||||
|
"MEET_INITIAL_API_KEY": "none",
|
||||||
|
"LIVEKIT_URL": "none",
|
||||||
|
"LIVEKIT_API_KEY": "none",
|
||||||
|
"LIVEKIT_API_SECRET": "none",
|
||||||
|
"DASHBOARD_URL": "none",
|
||||||
|
"GRAFANA_URL": "none",
|
||||||
|
"MINIO_URL": "none",
|
||||||
"DOMAIN_NAME": "none",
|
"DOMAIN_NAME": "none",
|
||||||
"LIVEKIT_TURN_DOMAIN_NAME": "none",
|
"LIVEKIT_TURN_DOMAIN_NAME": "none",
|
||||||
"REDIS_PASSWORD": "none",
|
"REDIS_PASSWORD": "none",
|
||||||
"MONGO_ADMIN_USERNAME": "none",
|
"MONGO_ADMIN_USERNAME": "none",
|
||||||
"MONGO_ADMIN_PASSWORD": "none",
|
"MONGO_ADMIN_PASSWORD": "none",
|
||||||
"MONGO_REPLICA_SET_KEY": "none",
|
"MONGO_REPLICA_SET_KEY": "none",
|
||||||
"MINIO_URL": "none",
|
|
||||||
"MINIO_ACCESS_KEY": "none",
|
"MINIO_ACCESS_KEY": "none",
|
||||||
"MINIO_SECRET_KEY": "none",
|
"MINIO_SECRET_KEY": "none",
|
||||||
"DASHBOARD_URL": "none",
|
|
||||||
"DASHBOARD_ADMIN_USERNAME": "none",
|
"DASHBOARD_ADMIN_USERNAME": "none",
|
||||||
"DASHBOARD_ADMIN_PASSWORD": "none",
|
"DASHBOARD_ADMIN_PASSWORD": "none",
|
||||||
"GRAFANA_URL": "none",
|
|
||||||
"GRAFANA_ADMIN_USERNAME": "none",
|
"GRAFANA_ADMIN_USERNAME": "none",
|
||||||
"GRAFANA_ADMIN_PASSWORD": "none",
|
"GRAFANA_ADMIN_PASSWORD": "none",
|
||||||
"LIVEKIT_API_KEY": "none",
|
|
||||||
"LIVEKIT_API_SECRET": "none",
|
|
||||||
"MEET_INITIAL_ADMIN_USER": "none",
|
|
||||||
"MEET_INITIAL_ADMIN_PASSWORD": "none",
|
|
||||||
"MEET_INITIAL_API_KEY": "none",
|
|
||||||
"ENABLED_MODULES": "none"
|
"ENABLED_MODULES": "none"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -385,8 +391,10 @@ Resources:
|
||||||
if [[ "${DomainName}" == '' ]]; then
|
if [[ "${DomainName}" == '' ]]; then
|
||||||
[ ! -d "/usr/share/openvidu" ] && mkdir -p /usr/share/openvidu
|
[ ! -d "/usr/share/openvidu" ] && mkdir -p /usr/share/openvidu
|
||||||
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
||||||
DOMAIN=$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
RANDOM_DOMAIN_STRING=$(tr -dc 'a-z' < /dev/urandom | head -c 8)
|
||||||
TURN_DOMAIN_NAME_SSLIP_IO="turn-$DOMAIN"
|
DOMAIN=openvidu-$RANDOM_DOMAIN_STRING-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
||||||
|
TURN_DOMAIN_NAME_SSLIP_IO="turn-$RANDOM_DOMAIN_STRING-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io"
|
||||||
|
echo $RANDOM_DOMAIN_STRING > /usr/share/openvidu/random-domain-string
|
||||||
echo $PublicHostname > /usr/share/openvidu/old-host-name
|
echo $PublicHostname > /usr/share/openvidu/old-host-name
|
||||||
else
|
else
|
||||||
DOMAIN=${DomainName}
|
DOMAIN=${DomainName}
|
||||||
|
|
@ -556,18 +564,23 @@ Resources:
|
||||||
|
|
||||||
if [[ "${DomainName}" == '' ]]; then
|
if [[ "${DomainName}" == '' ]]; then
|
||||||
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
||||||
DOMAIN=$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
RANDOM_DOMAIN_STRING=$(cat /usr/share/openvidu/random-domain-string)
|
||||||
|
DOMAIN=openvidu-$RANDOM_DOMAIN_STRING-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
||||||
else
|
else
|
||||||
DOMAIN=${DomainName}
|
DOMAIN=${DomainName}
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Generate URLs
|
# Generate URLs
|
||||||
|
OPENVIDU_URL="https://${!DOMAIN}/"
|
||||||
|
LIVEKIT_URL="wss://${!DOMAIN}/"
|
||||||
DASHBOARD_URL="https://${!DOMAIN}/dashboard/"
|
DASHBOARD_URL="https://${!DOMAIN}/dashboard/"
|
||||||
GRAFANA_URL="https://${!DOMAIN}/grafana/"
|
GRAFANA_URL="https://${!DOMAIN}/grafana/"
|
||||||
MINIO_URL="https://${!DOMAIN}/minio-console/"
|
MINIO_URL="https://${!DOMAIN}/minio-console/"
|
||||||
|
|
||||||
# Update shared secret
|
# Update shared secret
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DOMAIN_NAME": "'"$DOMAIN"'"}')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DOMAIN_NAME": "'"$DOMAIN"'"}')"
|
||||||
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"OPENVIDU_URL": "'"$OPENVIDU_URL"'" }')"
|
||||||
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"LIVEKIT_URL": "'"$LIVEKIT_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DASHBOARD_URL": "'"$DASHBOARD_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DASHBOARD_URL": "'"$DASHBOARD_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"GRAFANA_URL": "'"$GRAFANA_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"GRAFANA_URL": "'"$GRAFANA_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"MINIO_URL": "'"$MINIO_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"MINIO_URL": "'"$MINIO_URL"'" }')"
|
||||||
|
|
@ -600,7 +613,8 @@ Resources:
|
||||||
export DOMAIN=$(echo $SHARED_SECRET | jq -r .DOMAIN_NAME)
|
export DOMAIN=$(echo $SHARED_SECRET | jq -r .DOMAIN_NAME)
|
||||||
if [[ $DOMAIN == *"sslip.io"* ]] || [[ -z $DOMAIN ]]; then
|
if [[ $DOMAIN == *"sslip.io"* ]] || [[ -z $DOMAIN ]]; then
|
||||||
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
||||||
DOMAIN=$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
RANDOM_DOMAIN_STRING=$(cat /usr/share/openvidu/random-domain-string)
|
||||||
|
DOMAIN=openvidu-$RANDOM_DOMAIN_STRING-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io
|
||||||
fi
|
fi
|
||||||
if [[ -n "$DOMAIN" ]]; then
|
if [[ -n "$DOMAIN" ]]; then
|
||||||
sed -i "s/DOMAIN_NAME=.*/DOMAIN_NAME=$DOMAIN/" "${!CONFIG_DIR}/openvidu.env"
|
sed -i "s/DOMAIN_NAME=.*/DOMAIN_NAME=$DOMAIN/" "${!CONFIG_DIR}/openvidu.env"
|
||||||
|
|
@ -612,7 +626,8 @@ Resources:
|
||||||
export LIVEKIT_TURN_DOMAIN_NAME=$(echo $SHARED_SECRET | jq -r .LIVEKIT_TURN_DOMAIN_NAME)
|
export LIVEKIT_TURN_DOMAIN_NAME=$(echo $SHARED_SECRET | jq -r .LIVEKIT_TURN_DOMAIN_NAME)
|
||||||
if [[ $LIVEKIT_TURN_DOMAIN_NAME == *"sslip.io"* ]] || [[ -z $LIVEKIT_TURN_DOMAIN_NAME ]]; then
|
if [[ $LIVEKIT_TURN_DOMAIN_NAME == *"sslip.io"* ]] || [[ -z $LIVEKIT_TURN_DOMAIN_NAME ]]; then
|
||||||
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
PublicHostname=$(curl -s -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/public-hostname)
|
||||||
LIVEKIT_TURN_DOMAIN_NAME="turn-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io"
|
RANDOM_DOMAIN_STRING=$(cat /usr/share/openvidu/random-domain-string)
|
||||||
|
LIVEKIT_TURN_DOMAIN_NAME="turn-$RANDOM_DOMAIN_STRING-$(echo "$PublicHostname" | cut -d'.' -f1 | sed 's/^ec2-//').sslip.io"
|
||||||
fi
|
fi
|
||||||
if [[ -n "$LIVEKIT_TURN_DOMAIN_NAME" ]]; then
|
if [[ -n "$LIVEKIT_TURN_DOMAIN_NAME" ]]; then
|
||||||
sed -i "s/LIVEKIT_TURN_DOMAIN_NAME=.*/LIVEKIT_TURN_DOMAIN_NAME=$LIVEKIT_TURN_DOMAIN_NAME/" "${!CONFIG_DIR}/openvidu.env"
|
sed -i "s/LIVEKIT_TURN_DOMAIN_NAME=.*/LIVEKIT_TURN_DOMAIN_NAME=$LIVEKIT_TURN_DOMAIN_NAME/" "${!CONFIG_DIR}/openvidu.env"
|
||||||
|
|
@ -637,10 +652,13 @@ Resources:
|
||||||
sed -i "s/ENABLED_MODULES=.*/ENABLED_MODULES=$(echo $SHARED_SECRET | jq -r .ENABLED_MODULES)/" "${!CONFIG_DIR}/openvidu.env"
|
sed -i "s/ENABLED_MODULES=.*/ENABLED_MODULES=$(echo $SHARED_SECRET | jq -r .ENABLED_MODULES)/" "${!CONFIG_DIR}/openvidu.env"
|
||||||
|
|
||||||
# Update URLs in secret
|
# Update URLs in secret
|
||||||
|
OPENVIDU_URL="https://${!DOMAIN}/"
|
||||||
DASHBOARD_URL="https://${!DOMAIN}/dashboard/"
|
DASHBOARD_URL="https://${!DOMAIN}/dashboard/"
|
||||||
GRAFANA_URL="https://${!DOMAIN}/grafana/"
|
GRAFANA_URL="https://${!DOMAIN}/grafana/"
|
||||||
MINIO_URL="https://${!DOMAIN}/minio-console/"
|
MINIO_URL="https://${!DOMAIN}/minio-console/"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DOMAIN_NAME": "'"$DOMAIN"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DOMAIN_NAME": "'"$DOMAIN"'" }')"
|
||||||
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"OPENVIDU_URL": "'"$OPENVIDU_URL"'" }')"
|
||||||
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"LIVEKIT_URL": "'"$LIVEKIT_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DASHBOARD_URL": "'"$DASHBOARD_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"DASHBOARD_URL": "'"$DASHBOARD_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"GRAFANA_URL": "'"$GRAFANA_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"GRAFANA_URL": "'"$GRAFANA_URL"'" }')"
|
||||||
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"MINIO_URL": "'"$MINIO_URL"'" }')"
|
SHARED_SECRET="$(echo "$SHARED_SECRET" | jq '. + {"MINIO_URL": "'"$MINIO_URL"'" }')"
|
||||||
|
|
@ -864,6 +882,12 @@ Resources:
|
||||||
InstanceId: !Ref OpenviduServer
|
InstanceId: !Ref OpenviduServer
|
||||||
EIP: !Ref PublicElasticIP
|
EIP: !Ref PublicElasticIP
|
||||||
|
|
||||||
|
NewEIP:
|
||||||
|
Type: 'AWS::EC2::EIP'
|
||||||
|
Condition: PublicElasticIPAbsent
|
||||||
|
Properties:
|
||||||
|
InstanceId: !Ref OpenviduServer
|
||||||
|
|
||||||
IMDSv2LaunchTemplate:
|
IMDSv2LaunchTemplate:
|
||||||
Type: AWS::EC2::LaunchTemplate
|
Type: AWS::EC2::LaunchTemplate
|
||||||
Properties:
|
Properties:
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue